sl@0: // Copyright (c) 1998-2009 Nokia Corporation and/or its subsidiary(-ies). sl@0: // All rights reserved. sl@0: // This component and the accompanying materials are made available sl@0: // under the terms of "Eclipse Public License v1.0" sl@0: // which accompanies this distribution, and is available sl@0: // at the URL "http://www.eclipse.org/legal/epl-v10.html". sl@0: // sl@0: // Initial Contributors: sl@0: // Nokia Corporation - initial contribution. sl@0: // sl@0: // Contributors: sl@0: // sl@0: // Description: sl@0: // sl@0: sl@0: #if !defined(__S32CRYPT_H__) sl@0: #define __S32CRYPT_H__ sl@0: #if !defined(__S32BUF_H__) sl@0: #include sl@0: #endif sl@0: #if !defined(__S32STOR_H__) sl@0: #include sl@0: #endif sl@0: sl@0: class CPBEncryptor; sl@0: class CPBDecryptor; sl@0: class CPBEncryptionBase; sl@0: class CPBEncryptSet; sl@0: sl@0: const TInt KEncryptionFilterBufSize=160; sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * Base class used in the derivation of TEncryptFilter and TDecryptFilter. sl@0: sl@0: It has no user accessible functions. sl@0: sl@0: @see TEncryptFilter sl@0: @see TDecryptFilter sl@0: */ sl@0: class TSecureFilter : public TStreamFilter sl@0: { sl@0: protected: sl@0: TSecureFilter(); sl@0: void Set(MStreamBuf* aHost,TInt aMode=EWrite); sl@0: protected: sl@0: IMPORT_C TInt Capacity(TInt aMaxLength); sl@0: IMPORT_C TInt FilterL(TAny* aPtr,TInt aMaxLength,const TUint8*& aFrom,const TUint8* anEnd); sl@0: IMPORT_C void DoSynchL(); sl@0: TInt EmitL(const TDesC8& aDes); sl@0: private: sl@0: virtual TInt CryptL(TDes8& aTarget,const TDesC8& aSource) =0; sl@0: virtual void CompleteL(TDes8& aTarget,const TDesC8& aSource) =0; sl@0: private: sl@0: TBuf8 iIn; sl@0: TPtrC8 iOut; sl@0: TUint8 iBuf[KEncryptionFilterBufSize]; sl@0: }; sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * An encrypting filter. sl@0: sl@0: An object of this type is used by REncryptStream to encrypt stream data as sl@0: it is written to a target stream. sl@0: sl@0: Encryption itself is performed by an instance of a class implementing the sl@0: CPBEncryptor interface. sl@0: sl@0: @see REncryptStream sl@0: @see CPBEncryptor sl@0: */ sl@0: class TEncryptFilter : public TSecureFilter sl@0: { sl@0: public: sl@0: IMPORT_C TEncryptFilter(); sl@0: // New function, recommended sl@0: IMPORT_C void SetL(MStreamBuf* aHost,CPBEncryptor* aKey,TInt aMode=EWrite); sl@0: protected: sl@0: IMPORT_C void DoRelease(); sl@0: private: sl@0: IMPORT_C TInt CryptL(TDes8& aTarget,const TDesC8& aSource); sl@0: IMPORT_C void CompleteL(TDes8& aTarget,const TDesC8& aSource); sl@0: private: sl@0: CPBEncryptor* iKey; sl@0: }; sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * A decrypting filter. sl@0: sl@0: An object of this type is used by RDecryptStream to decrypt stream data as sl@0: it is read from a source stream. sl@0: sl@0: Decryption itself is performed by an instance of a class implementing the sl@0: CPBDecryptor interface. sl@0: sl@0: @see RDecryptStream sl@0: @see CSecureStore sl@0: @see CPBDecryptor sl@0: */ sl@0: class TDecryptFilter : public TSecureFilter sl@0: { sl@0: public: sl@0: IMPORT_C TDecryptFilter(); sl@0: // New function, recommended sl@0: IMPORT_C void SetL(MStreamBuf* aHost,CPBDecryptor* aKey,TInt aMode=ERead); sl@0: protected: sl@0: IMPORT_C void DoRelease(); sl@0: private: sl@0: IMPORT_C TInt CryptL(TDes8& aTarget,const TDesC8& aSource); sl@0: IMPORT_C void CompleteL(TDes8& aTarget,const TDesC8& aSource); sl@0: private: sl@0: CPBDecryptor* iKey; sl@0: }; sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * Supports the decrypting of a stream. sl@0: sl@0: The stream to be decrypted is a stream represented by an existing RReadStream sl@0: object. In effect, RDecryptStream forms a layer over the RReadStream object, sl@0: either using its source stream buffer or taking complete ownership of the sl@0: source stream buffer. sl@0: sl@0: Decryption of streamed data is supported using the TDecryptFilter class derived sl@0: from TStreamFilter. Decryption itself is performed by an instance of a class sl@0: implementing the CPBEncryptionBase interface. sl@0: sl@0: @see TDecryptFilter sl@0: @see TStreamFilter sl@0: @see CPBEncryptionBase sl@0: */ sl@0: class RDecryptStream : public RReadStream sl@0: { sl@0: public: sl@0: /** Constructs an empty decrypting stream object. sl@0: sl@0: Call OpenL() or OpenLC() to use a source stream owned by an existing read sl@0: stream interface object, a RReadStream. sl@0: sl@0: Call AttachL() or AttachLC() to use and take ownership of a source stream sl@0: owned by an existing read stream interface object. */ sl@0: RDecryptStream() {} sl@0: public: // Original functions, now deprecated sl@0: public: // New functions, using Password Based Encryption sl@0: IMPORT_C void OpenL(RReadStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void OpenLC(RReadStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void AttachL(RReadStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void AttachLC(RReadStream& aHost,const CPBEncryptionBase& aKey); sl@0: private: sl@0: TDecryptFilter iFilter; sl@0: }; sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * Supports the encryption of a stream. sl@0: sl@0: The stream to be encrypted is a stream represented by an existing RWriteStream sl@0: object. In effect, REncryptStream forms a layer over the RWriteStream object, sl@0: either using its target stream buffer or taking complete ownership of the sl@0: target stream buffer. sl@0: sl@0: Encryption of streamed data is supported using the TEncryptFilter class derived sl@0: from TStreamFilter. Encryption itself is performed by an instance of a class sl@0: implementing the CPBEncryptionBase interface. sl@0: sl@0: @see TEncryptFilter sl@0: @see TStreamFilter sl@0: @see CPBEncryptionBase sl@0: */ sl@0: class REncryptStream : public RWriteStream sl@0: { sl@0: public: sl@0: /** Constructs an empty encrypting stream object. sl@0: sl@0: Call OpenL() or OpenLC() to use a target stream owned by an existing write sl@0: stream interface object, a RWriteStream. sl@0: sl@0: Call AttachL() or AttachLC() to use and take ownership of a target stream sl@0: owned by an existing write stream interface object. */ sl@0: REncryptStream() {} sl@0: inline REncryptStream(const MExternalizer& anExter); sl@0: public: // Original functions, now deprecated sl@0: public: // New functions, using Password Based Encryption sl@0: IMPORT_C void OpenL(RWriteStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void OpenLC(RWriteStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void AttachL(RWriteStream& aHost,const CPBEncryptionBase& aKey); sl@0: IMPORT_C void AttachLC(RWriteStream& aHost,const CPBEncryptionBase& aKey); sl@0: private: sl@0: TEncryptFilter iFilter; sl@0: }; sl@0: // sl@0: sl@0: sl@0: class HEncryptFilter; sl@0: sl@0: /** sl@0: @publishedPartner sl@0: @released sl@0: A stream store whose streams are encrypted. sl@0: sl@0: The secure store is layered over another stream store which acts as the host sl@0: for the encrypted streams. This stream store is not owned by the secure store, sl@0: which means that it is possible to to use the secure store to store only a sl@0: portion of the streams in encrypted form. sl@0: sl@0: Access to the streams in this store is via the normal RStoreWriteStream and sl@0: RStoreReadStream classes. Internally, TEncryptFilter and TDecryptFilter objects sl@0: are attached to the streams from the host store in order to do the encryption sl@0: and decryption. sl@0: sl@0: @see RStoreWriteStream sl@0: @see RStoreReadStream sl@0: @see TEncryptFilter sl@0: @see TDecryptFilter sl@0: */ sl@0: class CSecureStore : public CStreamStore sl@0: { sl@0: public:// Original functions, now deprecated sl@0: public:// New functions using PBE sl@0: IMPORT_C static CSecureStore* NewL(CStreamStore& aHost,const CPBEncryptSet& aKey); sl@0: IMPORT_C static CSecureStore* NewLC(CStreamStore& aHost,const CPBEncryptSet& aKey); sl@0: CSecureStore(CStreamStore& aHost,const CPBEncryptSet& aKey); sl@0: protected: sl@0: IMPORT_C MStreamBuf* DoReadL(TStreamId anId) const; sl@0: IMPORT_C MStreamBuf* DoCreateL(TStreamId& anId); sl@0: IMPORT_C TStreamId DoExtendL(); sl@0: IMPORT_C void DoDeleteL(TStreamId anId); sl@0: IMPORT_C MStreamBuf* DoWriteL(TStreamId anId); sl@0: IMPORT_C MStreamBuf* DoReplaceL(TStreamId anId); sl@0: IMPORT_C void DoCommitL(); sl@0: IMPORT_C void DoRevertL(); sl@0: private: sl@0: inline CStreamStore& Host(); sl@0: inline const CStreamStore& Host() const; sl@0: inline const CPBEncryptSet& PBEKey() const; sl@0: void setEncryptFilterL(HEncryptFilter& aFilter, RStoreWriteStream& aStream); sl@0: private: sl@0: CStreamStore* iHost; sl@0: const CPBEncryptSet& iKey; sl@0: }; sl@0: sl@0: // sl@0: sl@0: /** sl@0: * @publishedPartner sl@0: * @released sl@0: * Uses an encrypted store to implement the page pool interface MPagePool. sl@0: sl@0: A secure store page pool uses a cache to store pages in-memory and to cache sl@0: frequently accessed pages. You should provide a cache object (CPageCache) sl@0: to the pool for this purpose. sl@0: sl@0: @see CPageCache sl@0: */ sl@0: class RSecureStorePagePool : public RStorePagePool sl@0: { sl@0: public:// Original functions, now deprecated sl@0: public:// New functions using PBE sl@0: IMPORT_C RSecureStorePagePool(const CPBEncryptSet& aKey); sl@0: IMPORT_C RSecureStorePagePool(CPageCache& aCache, const CPBEncryptSet& aKey); sl@0: protected: sl@0: IMPORT_C TPageRef ExtendL(const TAny* aPage,TPageReclamation aReclamation); sl@0: IMPORT_C void WriteL(TPageRef aRef,const TAny* aPage,TPageChange aChange); sl@0: IMPORT_C void ReadL(TPageRef aRef,TAny* aPage); sl@0: IMPORT_C void DoDeleteL(TPageRef aRef); sl@0: private: sl@0: const CPBEncryptSet& iKey; sl@0: }; sl@0: sl@0: sl@0: #include sl@0: #endif